[Bug 262590] [pf][patch] Anchor "blacklistd/" not correctly shown in pfctl -a \ -s rules

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 262590] [pf] Anchor "blacklistd/*" not correctly shown in pfctl -a \* -s rules"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sun, 10 Apr 2022 12:20:35 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=262590

--- Comment #10 from Kristof Provost <kp@freebsd.org> ---
(In reply to Matteo Riondato from comment #9)
'parent' and 'parent/*' mean different things.
From the pf.conf man page:

     Anchors may end with the asterisk (‘*’) character, which signifies that
all
     anchors attached at that point should be evaluated in the alphabetical
     ordering of their anchor name.  For example,

           anchor "spam/*"

     will evaluate each rule in each anchor attached to the spam anchor.  Note
     that it will only evaluate anchors that are directly attached to the spam
     anchor, and will not descend to evaluate anchors recursively.

Only if the anchor is listed as 'spam/*' (or parent/*) do we descend into the
parent/child anchor, so we need to be careful to maintain the distinction.

-- 
You are receiving this mail because:
You are the assignee for the bug.